AndOs
Oct 09, 2017Cirrostratus
AAA HTTP layered vip with ipv6 address
Hi!
I'm trying to create a layered vip with ipv6 to do https for an endpoint in a HTTP AAA server.
However I'm not having much luck getting it to work.
In /var/log/apm I'm getting error "Curl perform failed: Couldn't connect to server (7)"
My experience with ipv6 is limited so there might very well be something simple I have missed.
This is the config I'm using.
ltm node otpgateway.domain.com {
address 62.132.21.215
}
ltm pool layered_aaa_proxy_pool {
members {
otpgateway.domain.com:https {
address 62.132.21.215
}
}
}
ltm virtual layered_aaa_proxy_vip {
destination fd6d:ec93:1c0a:beef::1000.http
ip-protocol tcp
pool layered_aaa_proxy_pool
profiles {
http { }
serverssl {
context serverside
}
tcp { }
}
source-address-translation {
type automap
}
}
apm aaa http otpgateway_layered_HTTP {
auth-type custom-post
content-type xml-utf8
custom-body "<\?xml version=\"1.0\" encoding=\"UTF-8\" \?>........"
form-action /OTPsend
start-uri http://[fd6d:ec93:1c0a:beef::1000]
success-match-type string
success-match-value "200 OK"
}
Changing the address to a v4 works, but for various reasons it would be good if I could use a v6 address.
Should a v6 address work? Or are there any internal limitations for having an ipv6 address on this kind of layered approach?
Thanks!
/Andreas